CVE-2025-38546

Published: Aug 16, 2025Modified: Jan 7, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix memory leak of struct clip_vcc. ioctl(ATMARP_MKIP) allocates struct clip_vcc and set it to vcc->user_back. The code assumes that vcc_destroy_socket() passes NULL skb to vcc->push() when the socket is close()d, and then clip_push() frees clip_vcc. However, ioctl(ATMARPD_CTRL) sets NULL to vcc->push() in atm_init_atmarp(), resulting in memory leak. Let's serialise two ioctl() by lock_sock() and check vcc->push() in atm_init_atmarp() to prevent memleak.

Affected (18)

Products: Linux: Linux Kernel · Debian: Debian Linux

1 product

1 product

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 2.6.13 to 5.4.296
Linux Linux Kernel	From 5.11 to 5.15.189
Linux Linux Kernel	From 5.16 to 6.1.146
Linux Linux Kernel	From 5.5 to 5.10.240
Linux Linux Kernel	From 6.13 to 6.15.7
Linux Linux Kernel	From 6.2 to 6.6.99
Linux Linux Kernel	From 6.7 to 6.12.39
Linux Linux Kernel	Version 2.6.12
Linux Linux Kernel	Version 2.6.12 rc2
Linux Linux Kernel	Version 2.6.12 rc3
Linux Linux Kernel	Version 2.6.12 rc4
Linux Linux Kernel	Version 2.6.12 rc5
Linux Linux Kernel	Version 6.16 rc1
Linux Linux Kernel	Version 6.16 rc2
Linux Linux Kernel	Version 6.16 rc3
Linux Linux Kernel	Version 6.16 rc4
Linux Linux Kernel	Version 6.16 rc5